Abstract:Recently isolated Industrial Control System (ICS) became accessible and interconnected with Information and Communication Technology (ICT). Nowadays, the ICS is considered as the target of a considerable number of cyber-attacks. Moreover, the contemporary development of the ICS indicates its growing availability over the Internet. There are a few methodologies how to find Internet-connected devices. However, there is one well-known search engine for Internet-connected devices. The Shodan is a widely used tool that provides an enormous capability for targeting Internet-connected devices. In this article, we examine the current state of the ICS availability via the Internet. Therefore, we evaluate the possibility of exposing the vulnerable ICS systems in order to specify their relations to SCADA cyber security. Finally, we identify 974 vulnerable SCADA devices via the Shodan.